Despite an incessant onslaught of insider threats, social engineering attacks, breaches, and other security incidents, some organizations do not recognize that a significant flaw in their security paradigm could be the imprecise definition of Information management roles which leads to an inefficient delegation of relevant responsibilities among security personnel.

In this brief, entitled “Security #SquadGoals: Applying the Information Management Hierarchy to your Talent Placement & Acquisition Strategy Will Improve Organizational Security,” ICIT discusses the Information Management Hierarchy (information assurance, information security, cybersecurity, and IT) and how a better understanding of it can lead to better-defined roles and responsibilities for security personnel, ultimately leading to improved organizational security.  The paper also touches upon trends in cybersecurity spending and discusses if resources would be better allocated and utilized if security teams were more appropriately staffed.